Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: 2PfEODTsmqMOQBvBP1VPjHpsQ4vvgB4abrQuVoKVe5c=
Subject key identifier: F0:1A:B9:E9:42:AB:0C:9B:40:DD:75:DB:DA:84:E0:12:7E:67:36:04
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 019CE4EC589478B77785B48D4C15CBC41752
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 036A
Signing time: Fri 13 Mar 2026 02:00:20 +0000
Manifest this update: Fri 13 Mar 2026 02:00:20 +0000
Manifest next update: Sat 14 Mar 2026 02:00:20 +0000
Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: Z3vMI7XYCULzxJi0DRoDCE9FQ+AcGcOq/BsszOiEYSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:58:94:78:b7:77:85:b4:8d:4c:15:cb:c4:17:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Mar 13 02:00:20 2026 GMT
Not After : Mar 14 02:00:20 2026 GMT
Subject: CN=f01ab9e942ab0c9b40dd75dbda84e0127e673604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:e6:07:1f:de:49:66:8f:91:5a:4b:6c:1f:
cb:65:d7:fc:c5:d0:4e:5d:2e:4e:b9:0a:83:c9:84:
c7:df:75:01:5c:98:a2:1f:28:ed:fa:77:af:4a:21:
ed:58:f8:23:3a:38:de:cb:a9:bb:4b:bb:0d:fa:d3:
76:c6:48:92:58:70:3c:7e:3a:ee:39:95:1b:b5:0c:
e6:d4:6a:5d:bb:70:8b:ea:16:c2:d3:81:46:e3:d8:
e6:c4:ce:91:dd:fb:b4:33:c4:7e:29:60:83:ce:b9:
8f:54:73:dd:f8:e5:d0:c0:81:8d:c9:97:96:cc:8d:
ed:44:ae:3d:1b:ba:ab:53:48:7b:39:30:c7:da:c8:
76:92:bc:4b:34:ad:f3:03:25:9a:00:3e:9b:76:8a:
95:ee:50:af:cc:ad:a2:d6:ac:5e:7a:bd:d3:02:ec:
00:ef:3f:9c:02:31:af:11:63:66:59:a9:e2:8c:1c:
0b:26:4b:e2:ca:d3:32:58:b6:f6:81:93:ff:51:1c:
51:d9:d2:a1:3e:17:74:91:85:c7:75:42:51:1d:c5:
d8:83:33:15:42:7d:af:3f:9a:68:ed:f5:7a:e9:9c:
7f:ed:a0:d8:c1:48:52:7d:7a:d8:e5:77:c9:bf:11:
9b:d7:54:31:3b:4b:60:ca:55:6e:e3:0f:ef:21:e0:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1A:B9:E9:42:AB:0C:9B:40:DD:75:DB:DA:84:E0:12:7E:67:36:04
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:bf:82:24:17:f9:3a:a4:ac:c2:fe:20:ba:73:85:54:32:7f:
1b:5a:3d:d4:c1:f1:5a:cc:45:2c:66:88:4c:44:5a:14:65:fb:
cc:2b:22:de:50:5e:39:cc:b4:fb:7f:da:54:55:d5:ae:c8:ab:
e4:38:18:a4:9e:72:89:c9:99:f8:d5:56:bd:69:0d:40:43:89:
2f:a8:46:8c:1a:94:c7:93:e7:9f:0d:9a:da:ec:ab:27:60:7f:
90:94:e7:c6:cd:10:fd:ec:74:ce:53:45:d3:b6:53:28:7c:d2:
7e:96:83:af:b4:5b:87:e9:bc:50:2f:8c:8a:16:bb:6a:1d:de:
6f:b7:21:91:76:bf:16:fe:68:ac:a2:49:8b:92:76:73:02:a3:
7e:60:ee:38:0b:cb:84:ea:35:ff:f4:ed:cf:91:bb:ce:28:e8:
68:51:f6:c7:c7:da:bb:cb:bb:b5:b4:d8:e2:c6:36:c2:5c:80:
9d:5e:4b:30:74:90:74:4b:76:41:a9:9c:af:cc:11:2b:09:fd:
9b:b2:5a:c4:55:44:bd:c1:99:5f:f5:8d:7e:10:6d:6b:58:82:
a0:f4:5e:24:91:b9:41:2f:b2:23:1c:57:14:f2:9d:86:b2:0e:
98:b6:23:92:1b:26:a2:61:11:dd:10:9d:23:b7:a4:70:6a:d0:
7c:03:7e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:50:37 2026 by rpki-client